$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0bfc72e4-cc7a-4def-ab21-9e672606b826.roa File: 0bfc72e4-cc7a-4def-ab21-9e672606b826.roa (raw, json) Hash identifier: e94BytlPwEawUc+QmF+nMUjX+a33Ekgtx/s6dt+fO4Q= Subject key identifier: 1B:FF:CC:77:31:91:7B:33:87:E8:4F:DE:CE:11:04:B7:A2:C6:62:1D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 352E1C48EF6465AB13093B48EE0F83A814840D16 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0bfc72e4-cc7a-4def-ab21-9e672606b826.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 18.240.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 27 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:2e:1c:48:ef:64:65:ab:13:09:3b:48:ee:0f:83:a8:14:84:0d:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=323b969f8f19902237914b7ec4e784acfe69e17db10f77fdf5b60cd48c45518c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:09:39:59:42:95:7f:70:bd:99:2f:02:02:88: 0a:55:a0:fb:d4:35:c8:ea:58:68:1c:bd:31:ba:9d: 4f:b5:13:c8:34:7d:db:57:66:43:8d:af:f0:29:85: 48:0d:56:3f:53:5d:72:03:e7:7c:a3:22:42:dc:34: 82:30:06:38:5f:4f:ae:e4:ba:3a:e7:0a:4b:cc:2e: 46:1d:92:3a:e6:35:e2:f4:5e:76:da:7a:a1:78:ac: 2d:c6:0d:e8:37:05:f0:21:67:03:93:26:a7:a8:06: a1:4b:85:33:72:17:e4:cc:02:d4:7c:76:03:89:85: 04:ca:ca:3b:f9:95:6c:82:dd:29:88:02:32:ee:71: 1c:16:7c:c5:e7:b9:50:5c:33:1f:31:61:2e:1e:c1: 93:fe:fc:63:1b:7c:07:6a:d7:de:4e:c0:fe:01:ac: d2:46:e0:84:a4:a5:1e:3b:5b:9f:9d:f3:6c:6f:d3: 58:bb:32:4e:fe:97:8b:37:25:05:d8:f3:20:3a:f8: 75:c5:e2:7c:f5:ec:10:38:b7:e9:c9:e1:e1:a9:94: a3:59:b5:b0:bf:2e:01:1d:e6:31:f8:d1:58:68:1f: 2e:55:12:87:f2:b7:8a:cd:f3:fd:14:a6:7b:c0:fb: 51:c8:17:24:e0:b6:26:f4:db:94:61:48:24:21:c8: ea:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:FF:CC:77:31:91:7B:33:87:E8:4F:DE:CE:11:04:B7:A2:C6:62:1D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0bfc72e4-cc7a-4def-ab21-9e672606b826.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.240.0.0/14 Signature Algorithm: sha256WithRSAEncryption 57:b7:be:12:29:fc:20:e7:bc:9e:80:47:24:7c:14:80:a6:ea: 22:a3:3d:2b:09:d7:9c:e1:4e:33:0a:20:75:90:ce:3a:d8:79: 71:be:7e:39:e0:b6:cc:a8:13:2e:55:8f:33:a6:be:7b:fd:ca: 7c:b2:53:9b:68:b2:79:c0:55:91:2e:cf:c4:24:c1:83:18:ae: 20:9b:75:79:45:cd:dc:a2:d4:9c:26:59:95:e9:6c:ec:28:e8: 1c:e8:57:f2:55:63:3e:99:bf:11:50:2a:ad:fa:a5:3d:5e:5d: 02:10:0c:6b:0c:a3:c8:37:d9:99:9a:79:12:da:e3:7d:1d:de: 9a:e9:8f:de:3f:c5:37:45:69:1b:37:57:ab:14:df:ab:af:5c: 34:5b:fa:69:aa:99:cb:9e:28:93:ad:63:bc:a1:c4:b4:b3:29: 74:0c:d6:c2:7c:67:5f:40:59:97:50:25:8d:12:97:12:d6:39: d4:ed:9e:ad:dd:a2:3b:12:4a:37:33:5b:13:39:94:02:b8:1f: 08:e6:ac:5a:dc:e3:7a:2f:fb:54:e9:22:5e:68:9a:a9:63:5c: 89:19:9b:a4:1a:1a:7f:ea:4b:cb:c0:ef:3f:48:56:95:19:a0: 3c:b3:62:a4:06:76:e5:35:58:76:7c:f4:6f:47:b5:4b:e5:d3: 0a:9c:7e:01 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNS4cSO9kZasTCTtI7g+DqBSEDRYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMTE5MDAwMDAwWhcNMjQxMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjNiOTY5ZjhmMTk5MDIyMzc5MTRiN2VjNGU3ODRhY2Zl NjllMTdkYjEwZjc3ZmRmNWI2MGNkNDhjNDU1MThjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKCTlZQpV/cL2ZLwICiApVoPvUNcjqWGgcvTG6nU+1E8g0 fdtXZkONr/AphUgNVj9TXXID53yjIkLcNIIwBjhfT67kujrnCkvMLkYdkjrmNeL0 XnbaeqF4rC3GDeg3BfAhZwOTJqeoBqFLhTNyF+TMAtR8dgOJhQTKyjv5lWyC3SmI AjLucRwWfMXnuVBcMx8xYS4ewZP+/GMbfAdq195OwP4BrNJG4ISkpR47W5+d82xv 01i7Mk7+l4s3JQXY8yA6+HXF4nz17BA4t+nJ4eGplKNZtbC/LgEd5jH40VhoHy5V Eofyt4rN8/0UpnvA+1HIFyTgtib025RhSCQhyOrZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUG//MdzGRezOH6E/ezhEEt6LGYh0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzBiZmM3MmU0LWNjN2EtNGRlZi1hYjIxLTllNjcyNjA2YjgyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIS8DANBgkqhkiG9w0BAQsFAAOCAQEAV7e+Ein8IOe8noBHJHwUgKbqIqM9 KwnXnOFOMwogdZDOOth5cb5+OeC2zKgTLlWPM6a+e/3KfLJTm2iyecBVkS7PxCTB gxiuIJt1eUXN3KLUnCZZlels7CjoHOhX8lVjPpm/EVAqrfqlPV5dAhAMawyjyDfZ mZp5EtrjfR3emumP3j/FN0VpGzdXqxTfq69cNFv6aaqZy54ok61jvKHEtLMpdAzW wnxnX0BZl1AljRKXEtY51O2erd2iOxJKNzNbEzmUArgfCOasWtzjei/7VOkiXmia qWNciRmbpBoaf+pLy8DvP0hWlRmgPLNipAZ25TVYdnz0b0e1S+XTCpx+AQ== -----END CERTIFICATE-----Generated at Sun Nov 24 21:43:54 2024 by rpki-client on console-ams.rpki-client.org